Checkmarx / red-liliLinks
This open-source project tracks RED-LILI's activity over time as there are evidence the actor is still active. All information provided here is intended for research purposes.
☆11Updated 2 years ago
Alternatives and similar repositories for red-lili
Users that are interested in red-lili are comparing it to the libraries listed below
Sorting:
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 5 years ago
- Reference architecture and proof of concept implementation for supply chain security gateway☆23Updated 2 years ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆23Updated 4 years ago
- Static Token And Credential Scanner☆95Updated 2 years ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆106Updated last year
- Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules 🗂☆98Updated last month
- A collection of my Semgrep rules☆51Updated 2 years ago
- An HTTP Response fuzzer to find Vulnerabilities in Security Scanners☆27Updated last year
- An extension to use Semgrep inside Burp Suite.☆89Updated 8 months ago
- ☆226Updated last month
- Mitigate security concerns of Dependency Confusion supply chain security risks☆51Updated 3 weeks ago
- Dependency Combobulator☆95Updated 2 years ago
- Purposely vulnerable Java application to help lead secure coding workshops☆191Updated last year
- Application and Service Fingerprinting☆132Updated 3 years ago
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆160Updated last year
- My custom semgrep rules☆23Updated 5 years ago
- ☆90Updated 3 years ago
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts☆82Updated 3 years ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆21Updated 11 months ago
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆141Updated 3 months ago
- AWS Security Checks☆40Updated 8 years ago
- My collection of Semgrep rules for vulnerability detection on source code (swift, java, cobol)☆41Updated 2 months ago
- ☆45Updated 5 years ago
- Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.☆24Updated 3 years ago
- Bot per leggere i livelli idrometrici dei fiumi dell'Emilia Romagna riportati da allertameteo.regione.emilia-romagna.it.☆12Updated 2 weeks ago
- Benchmarking repo for secrets scanning☆242Updated last year
- A set of simple servers (currently HTTP/HTTPS and DNS) which allow configurable and scriptable responses to network requests.☆62Updated 3 years ago
- Custom scripts for the PIPER Burp extensions.☆98Updated 2 years ago
- A colorful cross-platform python script to test misconfigurations of AWS S3 buckets both through authenticated and unauthenticated checks…☆39Updated 4 years ago
- Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes☆32Updated 3 years ago